Redefining Ransomware Attacks on AWS using AWS KMS XKS
Tags
cmtmf-attack-pattern: Data Encrypted
attack-pattern: Data Hardware - T1592.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Connection Proxy - T1090 Data Encrypted - T1022
Show in Graph
Common Information
Type Value
UUID 4712f4ea-7fa0-4bc9-8050-e4716edfed42
Fingerprint 3c17f1d93daf30d0
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 10, 2024, 9:23 p.m.
Added to db Oct. 10, 2024, 11:33 p.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline Perfecting Ransomware on AWS — Using keys to the kingdom to change the locks
Title Redefining Ransomware Attacks on AWS using AWS KMS XKS
Detected Hints/Tags/Attributes 39/2/11
Source URLs
Redirection Url
Details Source https://medium.com/@harsh8v/redefining-ransomware-attacks-on-aws-using-aws-kms-xks-dea668633802?source=rss------cybersecurity-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
www.opendnssec.org
Details Domain 4128 
github.com
Details Domain 1 
xks2.pubkeypair.com
Details File 1 
xks2.pub
Details Github username 7 
aws-samples
Details Github username 1 
harshvaragiya
Details Url 1 
https://www.opendnssec.org/softhsm
Details Url 1 
https://github.com/aws-samples/aws-kms-xks-proxy
Details Url 1 
https://github.com/harshvaragiya/aws-kms-xks-proxy
Details Url 1 
https://github.com/aws-samples/aws-kms-xksproxy-test-client.git
Details Url 1 
https://xks2.pubkeypair.com